Role engineering: From design to evolution of security schemes

Role engineering: From design to evolution of security schemes

This paper presents a methodology to design the RBAC (Role-Based Access Control) scheme during the design phase of an Information System. Two actors, the component developer and the security administrator, will cooperate to define and set up the minimal set of roles in agreement with the application...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:The Journal of systems and software 2008-08, Vol.81 (8), p.1306-1326
Hauptverfasser: Goncalves, Gilles, Poniszewska-Maranda, Aneta
Format: Artikel
Sprache:eng
Schlagworte:
Access control
Algorithms
Constraints
Cybersecurity
Information systems
Role engineering
Role-based access control model
Security of information system
Studies
Systems design
UML (Unified Modelling Language)
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This paper presents a methodology to design the RBAC (Role-Based Access Control) scheme during the design phase of an Information System. Two actors, the component developer and the security administrator, will cooperate to define and set up the minimal set of roles in agreement with the application constraints and the organization constraints that guarantee the global security policy of an enterprise. In order to maintain the global coherence of the existing access control scheme, an algorithm is proposed to detect the possible inconsistencies before the integration of a new component in the Information System.
ISSN:0164-1212
1873-1228
DOI:10.1016/j.jss.2007.11.003